I'm still stuck, trying to get a certificate for a new domain. So I've decided to add it to my existing certificate. So I am going to systematically present my current status, then ask a specific question about adding a domain to my current SSL certificate.
(1) Did a cert dry run and make sure all is well before adding the new domain "pair" (w/ and w/o www). Successful. Listing below.
(2) Proved (I believe) that my DNS settings were correct. I did nslookup womenofaction.club and it resolved to the correct IP. Just for grins, I also did ping womenofaction.club and it pinged away. So I'm setting aside the DNS settings as suspect.
(3) Next, checked domains covered by the current cert:
[ken@alpha ~]$ sudo certbot certificates
[sudo] password for ken:
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Found the following certs:
Certificate Name: enfeedia.com
Serial Number: 423397c545bd0bd96b82d002308664f4842
Key Type: RSA
Domains: enfeedia.com keligo.com llgorman.com packetstacks.com saddlebrookeranch.org sme62.org storiesofpetsbypetsforpets.com www.enfeedia.com www.keligo.com www.llgorman.com www.packetstacks.com www.saddlebrookeranch.org www.sme62.org www.storiesofpetsbypetsforpets.com
Expiry Date: 2022-11-25 13:03:11+00:00 (VALID: 57 days)
Certificate Path: /etc/letsencrypt/live/enfeedia.com/fullchain.pem
Private Key Path: /etc/letsencrypt/live/enfeedia.com/privkey.pem
Perfect.
(4) I spent some time with the Linode help community to make sure the VirtualHost stuff is correct. Confirmed. Also pressed the httpd conf file looking for anything that would cause a new vhost blocking all existing ones. I do not see how anything there could have that effect.
The current VirtualHost listings are included here, then the question.
Processing /etc/letsencrypt/renewal/enfeedia.com.conf
Cert not due for renewal, but simulating renewal for dry run
Plugins selected: Authenticator apache, Installer apache
Starting new HTTPS connection (1): acme-staging-v02.api.letsencrypt.org
Simulating renewal of an existing certificate for enfeedia.com and 13 more domains
Performing the following challenges:
http-01 challenge for enfeedia.com
http-01 challenge for keligo.com
http-01 challenge for llgorman.com
http-01 challenge for packetstacks.com
http-01 challenge for saddlebrookeranch.org
http-01 challenge for sme62.org
http-01 challenge for storiesofpetsbypetsforpets.com
http-01 challenge for www.enfeedia.com
http-01 challenge for www.keligo.com
http-01 challenge for www.llgorman.com
http-01 challenge for www.packetstacks.com
http-01 challenge for www.saddlebrookeranch.org
http-01 challenge for www.sme62.org
http-01 challenge for www.storiesofpetsbypetsforpets.com
Waiting for verification...
Cleaning up challenges
new certificate deployed with reload of apache server; fullchain is
/etc/letsencrypt/live/enfeedia.com/fullchain.pem
Congratulations, all simulated renewals succeeded:
/etc/letsencrypt/live/enfeedia.com/fullchain.pem (success)
NOW--
Given everything appears to be correct, I entirely removed the VirtualHost block for the new womenofaction.club (put there in my attempt to get a new certificate for it) from the vhost config, and use certbot to add the new domain to the current certificate.
Up to now, I've been trying to create a new certificate for the new domain. I'm changing my mind, as I need that new website to get online and all existing ones not be adversely affected.
Here's the current vhost.conf file:
<VirtualHost *:80>
ServerAdmin fake@me.com
ServerName saddlebrookeranch.org
ServerAlias www.saddlebrookeranch.org
DocumentRoot /srv/www/saddlebrookeranch.org/public_html/
ErrorLog /srv/www/saddlebrookeranch.org/logs/error.log
CustomLog /srv/www/saddlebrookeranch.org/logs/access.log combined
RewriteEngine on
RewriteCond %{SERVER_NAME} =www.saddlebrookeranch.org [OR]
RewriteCond %{SERVER_NAME} =saddlebrookeranch.org
RewriteRule ^ https://%{SERVER_NAME}%{REQUEST_URI} [END,NE,R=permanent]
<VirtualHost *:80>
ServerAdmin fake@me.com
ServerName enfeedia.com
ServerAlias www.enfeedia.com
DocumentRoot /srv/www/enfeedia.com/public_html/
ErrorLog /srv/www/enfeedia.com/logs/error.log
CustomLog /srv/www/enfeedia.com/logs/access.log combined
RewriteEngine on
RewriteCond %{SERVER_NAME} =www.enfeedia.com [OR]
RewriteCond %{SERVER_NAME} =enfeedia.com
RewriteRule ^ https://%{SERVER_NAME}%{REQUEST_URI} [END,NE,R=permanent]
<VirtualHost *:80>
ServerAdmin fake@me.com
ServerName sme62.org
ServerAlias www.sme62.org
DocumentRoot /srv/www/sme62.org/public_html/
ErrorLog /srv/www/sme62.org/logs/error.log
CustomLog /srv/www/sme62.org/logs/access.log combined
RewriteEngine on
RewriteCond %{SERVER_NAME} =www.sme62.org [OR]
RewriteCond %{SERVER_NAME} =sme62.org
RewriteRule ^ https://%{SERVER_NAME}%{REQUEST_URI} [END,NE,R=permanent]
<VirtualHost *:80>
ServerAdmin fake@me.com
ServerName llgorman.com
ServerAlias www.llgorman.com
DocumentRoot /srv/www/llgorman.com/public_html/
ErrorLog /srv/www/llgorman.com/logs/error.log
CustomLog /srv/www/llgorman.com/logs/access.log combined
RewriteEngine on
RewriteCond %{SERVER_NAME} =www.llgorman.com [OR]
RewriteCond %{SERVER_NAME} =llgorman.com
RewriteRule ^ https://%{SERVER_NAME}%{REQUEST_URI} [END,NE,R=permanent]
<VirtualHost *:80>
ServerAdmin fake@me.com
ServerName storiesofpetsbypetsforpets.com
ServerAlias www.storiesofpetsbypetsforpets.com
DocumentRoot /srv/www/storiesofpetsbypetsforpets.com/public_html/
ErrorLog /srv/www/storiesofpetsbypetsforpets.com/logs/error.log
CustomLog /srv/www/storiesofpetsbypetsforpets.com/logs/access.log combined
RewriteEngine on
RewriteCond %{SERVER_NAME} =www.storiesofpetsbypetsforpets.com [OR]
RewriteCond %{SERVER_NAME} =storiesofpetsbypetsforpets.com
RewriteRule ^ https://%{SERVER_NAME}%{REQUEST_URI} [END,NE,R=permanent]
<VirtualHost *:80>
ServerAdmin fake@me.com
ServerName keligo.com
ServerAlias www.keligo.com
DocumentRoot /srv/www/keligo.com/public_html/
ErrorLog /srv/www/keligo.com/logs/error.log
CustomLog /srv/www/keligo.com/logs/access.log combined
RewriteEngine on
RewriteCond %{SERVER_NAME} =keligo.com [OR]
RewriteCond %{SERVER_NAME} =www.keligo.com
RewriteRule ^ https://%{SERVER_NAME}%{REQUEST_URI} [END,NE,R=permanent]
<VirtualHost *:80>
ServerAdmin fake@me.com
ServerName packetstacks.com
ServerAlias www.packetstacks.com
DocumentRoot /srv/www/packetstacks.com/public_html/
ErrorLog /srv/www/packetstacks.com/logs/error.log
CustomLog /srv/www/packetstacks.com/logs/access.log combined
RewriteEngine on
RewriteCond %{SERVER_NAME} =packetstacks.com [OR]
RewriteCond %{SERVER_NAME} =www.packetstacks.com
RewriteRule ^ https://%{SERVER_NAME}%{REQUEST_URI} [END,NE,R=permanent]